package com.mata.worktime.controller.user;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import com.mata.worktime.configuration.dingtalk.AppConfig;
import com.mata.worktime.entity.user.User;
import com.mata.worktime.service.user.UserService;
import com.mata.worktime.vo.ResultVO;
import org.apache.commons.lang3.StringUtils;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import com.mata.worktime.controller.BaseController;
import com.mata.worktime.util.ServletUtils;

import java.util.Objects;


/**
 * 登录验证
 *
 * @author
 */
@Controller
public class LoginController extends BaseController {

    @Autowired
    private AppConfig appConfig;

    @Autowired
    private UserService userService;


    /**
     * 登录页
     *
     * @param request  请求
     * @param response 响应
     * @return 登录页
     */
//    @GetMapping("/tologin")
    @RequestMapping("/tologin")
    public String login(HttpServletRequest request, HttpServletResponse response, Model model) {
        // 如果是Ajax请求，返回Json字符串。
        if (ServletUtils.isAjaxRequest(request)) {
            return ServletUtils.renderString(response,
                    "{\"code\":\"1\",\"msg\":\"未登录或登录超时。请重新登录\"}");
        }
        model.addAttribute("corpId",appConfig.getCorpId());
        return "login";
    }

    /**
     * 表单登录
     *
     * @param username   用户名
     * @param password   密码
     * @param rememberMe 是否记住我
     * @return 统一结果
     */
    @PostMapping("/login")
    @ResponseBody
    public ResultVO ajaxLogin(String username, String password, Boolean rememberMe) {
        UsernamePasswordToken token = new UsernamePasswordToken(username, password, rememberMe);
        Subject subject = SecurityUtils.getSubject();
        try {
            subject.login(token);
        } catch (AuthenticationException e) {
            String msg = "用户或密码错误";
            if (StringUtils.isNotEmpty(e.getMessage())) {
                msg = e.getMessage();
            }
            return ResultVO.error(500, msg);
        }

        return ResultVO.success();
    }

    /**
     * dingtalk登录
     *
     * @return 统一结果
     */
    @PostMapping("/ddlogin")
    @ResponseBody
    public ResultVO ddlogin(String userId) {
        User user = userService.selectUserByLoginUserId(userId);
        if (Objects.isNull(user)){
            return ResultVO.error(500,"用户不存在,请联系管理员");
        }
        UsernamePasswordToken token = new UsernamePasswordToken(user.getLoginName(), user.getPassword(), false);
        Subject subject = SecurityUtils.getSubject();
        try {
            subject.login(token);
        } catch (AuthenticationException e) {
            String msg = "用户或密码错误";
            if (StringUtils.isNotEmpty(e.getMessage())) {
                msg = e.getMessage();
            }
            return ResultVO.error(500, msg);
        }

        return ResultVO.success();
    }

    /**
     * 没权限或没登录返回页
     *
     * @param request  请求
     * @param response 响应
     * @return 没权限或没登录返回页
     */
    @GetMapping("/unauth")
    public String unauth(HttpServletRequest request, HttpServletResponse response) {

        // 如果是Ajax请求，返回Json字符串。
        if (ServletUtils.isAjaxRequest(request)) {
            return ServletUtils.renderString(response,
                    "{\"code\":\"1\",\"msg\":\"没有该访问权限，请联系管理员\"}");
        }
        return "/error/unauth";
    }
}
